CVE-2004-2088 - Unspecified vulnerability in Sophos Anti-Virus 3.78/3.4.6

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE

Summary

Sophos Anti-Virus 3.78 allows remote attackers to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message.

Common Weakness Enumeration (CWE)

Refmap

bid9650
confirmhttp://www.sophos.com/support/news/#mime-378
sectrack1009042
secunia10855
xfsophos-email-virus-undetected(15192)